Business Owner: “What you think about cybersecurity insurance?” Me: “Very lucrative business today.” Business Owner: “No, I mean, do you think I need some?” Me: “Oh! What you’re really asking is, will it save your bacon if you get hacked.” Business Owner: “er…um…Yeah! Me: “Maybe. The cost/value of cybersecurity and cybersecurity insurance both depend on[…]

The burden of proof always falls upon the CIO, CISO, InfoSec Specialists, and IT Service Providers in justifying the costs for cybersecurity. Or maybe they delegate the cost justification further down the ladder to you. In any case, that cost calculation needs to be done with both current operational data, and current valuation of breach[…]

Critical Line of Defense Understanding your layers of defense to protect against malware and breaches is mission critical for the entire organization today. Each layer has a function and purpose, and is meant to stop malware before it strikes. (To simplfy this discussion let’s leave out detection and remediation since that is really after a breach occurs,[…]